Status of High-Risk Vulnerabilities
| No. | Vulnerability No. (CVE) | Content | CVSS | Risk Level |
|---|---|---|---|---|
| 1 | CVE-2026-20131 | Cisco Secure FMC Insecure Deserialization | 10 | CRITICAL |
| 2 | CVE-2026-27897 | Vociferous Path Traversal | 10 | CRITICAL |
| 3 | CVE-2026-32306 | OneUptime SQL Injection | 9.9 | CRITICAL |
| 4 | CVE-2026-29058 | AVideo Encoder Command Injection | 9.8 | CRITICAL |
| 5 | CVE-2026-31896 | WeGIA SQL Injection | 9.8 | CRITICAL |
| 6 | CVE-2026-26793 | GL-iNet GL-AR300M16 Command Injection | 9.8 | CRITICAL |
| 7 | CVE-2026-26795 | GL-iNet GL-AR300M16 Command Injection | 9.8 | CRITICAL |
| 8 | CVE-2026-26791 | GL-iNet GL-AR300M16 Command Injection | 9.8 | CRITICAL |
| 9 | CVE-2026-26792 | GL-iNet GL-AR300M16 Command Injection | 9.8 | CRITICAL |
| 10 | CVE-2026-29183 | SiYuan Cross-Site Scripting | 9.3 | CRITICAL |
Distribution of Web Application Attack Types
| No. | Attack Type | % | Key Features and Purpose |
|---|---|---|---|
| 1 | SQL Injection | 42.5% | Database manipulation, privilege escalation, and sensitive data exfiltration |
| 2 | Application Vulnerability | 14.92% | Exploitation of application-level flaws (insufficient authentication, misconfigurations) |
| 3 | System File Access | 11.35% | Unauthorized access attempts to internal server files and directories |
| 4 | Default Page | 9.02% | Collection of system information through exposure of default configuration pages |
| 5 | Bad User-Agent | 7.7% | Automated reconnaissance activities using malicious scanners or bots |
Key Attack Detection Status by Industry
| No. | Industry | Total | First Attack Type | Second Attack Type |
|---|---|---|---|---|
| 1 | Education Industry | 3,970,000 cases | SQL Injection ~1,720,000 cases | Application Vulnerability ~850,000 cases |
| 2 | Service Industry | 3,280,000 cases | SQL Injection ~1,730,000 cases | Application Vulnerability ~600,000 cases |
| 3 | Manufacturing Industry | 1,940,000 cases | Default Page ~600,000 cases | System File Access ~360,000 cases |
| 4 | Public Institutions | 1,570,000 cases | SQL Injection ~580,000 cases | Application Vulnerability ~320,000 cases |
The Threat Intelligence Report provides the latest web vulnerability analyses, industry-specific attack patterns,
and key CVE-based vulnerability information, all based on processed data from the AI/ML-powered threat intelligence platform AILabs.
Subscribe to receive the full monthly Threat Intelligence Report!
[ Subscribe → ]
